Microsoft Windows DNS Server Denial Of Service Vulnerability (2647170) Network Vulnerability

Summary

This host is missing an important security update according to Microsoft Bulletin MS12-017.

Impact

Successful exploitation could allow remote attacker to execute arbitrary code or to cause the DNS server to stop responding or to restart. Impact Level: System/Application

Solution

Run Windows Update and update the listed hotfixes or download and update mentioned hotfixes in the advisory from the below link, http://technet.microsoft.com/en-us/security/bulletin/ms12-017

Insight

The flaws are exists when Windows DNS server processing certain lookup queries and can be exploited to restart the DNS server.

Affected

Microsoft Windows 2K3 Service Pack 2 and prior. Microsoft Windows Server 2008 Service Pack 2 and prior.

References

http://secunia.com/advisories/48394
http://support.microsoft.com/kb/2647170
http://technet.microsoft.com/en-us/security/bulletin/ms12-017

Updated on 2015-03-25

Severity

Classification

CVE CVE-2012-0006

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:N/I:N/A:P

Related Vulnerabilities

Microsoft Lync Server Remote Denial of Service Vulnerability (2990928)
Microsoft SharePoint Multiple Privilege Escalation Vulnerabilities (2451858)
Microsoft 'ISATAP' Component Spoofing Vulnerability (978338)
Microsoft .NET Framework Chart Control Information Disclosure Vulnerability (2567943)
Microsoft MS03-034 security check

Microsoft Windows DNS Server Denial of Service Vulnerability (2647170)

Take action and discover your vulnerabilities